This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Crypto Defense Ransomware

Garfield
Engaged Sweeper

‎07-31-2025 01:13 AM

Hi Lansweeper Support team,

Can the team kindly guide me on how to run a query to search for these files related to Crypto Defense ransomware, that are "How_decrypt.txt" and "How_decrypt.html", on all assets?

Regards,

Garfield

 

Gque
0 Kudos
5 REPLIES 5
Obi_1_Cinobi
Lansweeper Tech Support
Lansweeper Tech Support

‎07-31-2025 09:29 AM

Hello there!

Custom file scanning might be able to assist: https://community.lansweeper.com/t5/scanning-your-network/windows-custom-file-scanning/ta-p/64272

0 Kudos
Garfield
Engaged Sweeper
In response to Obi_1_Cinobi

‎07-31-2025 04:55 PM

Thanks much for this, but the caveat is that there are no specific file paths; the files are normally on the C drive and or any drive, and not specifically in the Program Files folder. How would we do this custom system scanning in this case? As an example, 😧help\DataDictionary\HOW_DECRYPT.HTML

Gque
0 Kudos
Obi_1_Cinobi
Lansweeper Tech Support
Lansweeper Tech Support
In response to Garfield

‎07-31-2025 05:04 PM

Hello there!

Unfortunately, you must submit the exact file path, including the drive, for custom file scanning, so that feature is not an option in this use case.

0 Kudos
Garfield
Engaged Sweeper
In response to Garfield

‎07-31-2025 05:00 PM

Is it possible to scan via a Hash file Sha256 in Lansweeper and or registry entry? 

Gque
0 Kudos
Obi_1_Cinobi
Lansweeper Tech Support
Lansweeper Tech Support
In response to Garfield

‎07-31-2025 05:05 PM

Have a look at our custom registry scanning feature to see if this suits your use case: https://community.lansweeper.com/t5/scanning-your-network/scan-registry-values-with-custom-registry-...

0 Kudos

Reports & Analytics

Ask about reports you're interested in and share reports you've created. Subscribe to receive daily updates of reports shared in the Community.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now